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© Data storage device. 

© A data storage device (9) comprises an array of 
electronic memory locations (20) for storing data. An 
address input terminal (10) provides coupling to an 
address source and is coupled to provide first ad- 
dress signals from the address source to address 
the memory locations of the array (20). A data output 
terminal (12) provides coupling to a data reception 
arrangement and is connected to the array (20) for 
receiving data signals therefrom in response to the 
address signals. The data signals are indicative of 
the data stored in the memory locations addressed 
by the address signals. An address encryption ar- 
rangement (14) is coupled between the address in- 
put terminal (10) and the array (20) for encrypting 
the first address signals. The address encryption 
arrangement (14) contains encrypting data which is 
protected from direct optical determination, the en- 
crypting data being used to encrypt the first address 
signals. 
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FIELD OF THE INVENTION 

This invention relates generally to data storage 
devices. 

BACKGROUND OF THE INVENTION 

Data storage devices, for example, smart cards 
containing bank account details in the form of data 
values stored in integrated circuit (IC) memory ad- 
dresses, are at risk from fraudulent optical detec- 
tion by the removal of the plastic encapsulation 
around the IC, etching away covering layers and 
applying a selectively absorbable stain to render 
the memory data optically visible. 

It is known that address encrypting arrange- 
ments may be used, which result in the data values 
being arranged non-sequentially within the IC 
memory. The data therefore appears meaningless 
if optically analysed, but can be legitimately acces- 
sed through the address encrypting arrangement. A 
problem with this arrangement is that by perform- 
ing the same optical detection techniques as men- 
tioned above, one could learn the encrypting de- 
tails on which the encrypting arrangement is based 
and thus could make sense of the data within the 
IC. 

This invention seeks to provide a data storage 
device in which the above mentioned disadvantage 
is mitigated. 

SUMMARY OF THE INVENTION 

A data storage device comprises an array of 
electronic memory locations for storing data. An 
address input terminal provides coupling to an ad- 
dress source and is coupled to provide first ad- 
dress signals from the address source to address 
the memory locations of the memory array. A data 
output terminal provides coupling to a data recep- 
tion arrangement and is connected to the memory 
array for receiving data signals therefrom in re- 
sponse to the address signals. The data signals are 
indicative of the data stored in the memory loca- 
tions addressed by the address signals. An ad- 
dress encryption arrangement is coupled between 
the address input terminal and the array for en- 
crypting the first address signals. The address en- 
cryption arrangement contains encrypting data 
which is protected from direct optical determina- 
tion, the encrypting data being used to encrypt the 
first address signals. 

The array of data memory may be a Read- 
Only-Memory containing data which is stored in an 
encrypted manner, the encryption thereof being 
matched with the arrangement of the encrypting 
data. 



The address encryption arrangement may in- 
clude a latch for receiving the encrypting data from 
the non-volatile-memory, such that the non-volatile- 
memory can operate independently from the ad- 
5 dress encryption arrangement during normal opera- 
tion. 

ft will be appreciated that in this way one 
cannot learn the encrypting details on which the 
encrypting arrangement is based and thus sense 
io cannot be made of the data within the IC. 

BRIEF DESCRIPTION OF THE DRAWINGS 

An exemplary embodiment of the invention will 
is now be described with reference to the drawing in 
which: 

FIG.1 shows a preferred embodiment of a data 
storage device in accordance with the invention. 

20 DETAILED DESCRIPTION OF A PREFERRED EM- 
BODIMENT 

Referring to FIG.1 , there is shown a smart card 
9, comprising an address input terminal 10 for 

25 receiving address signals from an address drive 
circuit of the smart card 9 (not shown). The smart 
card 9 is an integrated circuit fabricated on a 
silicon wafer. 

An address encryptor 14 is connected to the 

ao address input terminal 10 for encrypting the ad- 
dress signals received therefrom according to an 
encrypting key to be explained hereafter. 

A row decoder 16 and a column decoder 18 
are independently connected to the address en- 

35 cryptor 14 for providing memory addressing to a 
read-only-memory (ROM) 20, the addressing being 
in response to the encrypted address signals from 
the address encryptor 14. 

The ROM 20 contains electronic data which is 

40 stored in an array of memory addresses therein. 
The data is addressed by the row decoder 16 and 
the column decoder 18 coupled thereto, the ROM 
20 providing data signals to a data output terminal 
12 in response to being addressed. Each data 

45 signal is indicative of the data value stored in the 
address being addressed. 

The physical arrangement of the memory loca- 
tions of the data memory 20 does not obviously 
correspond to the address signals received at the 

so address input terminal 10 since these received 
address signals are encrypted by the encryptor 14. 
Thus possible optical detection of the contents of 
the memory locations as referred to above would 
not afford any sense to be made from the data, 

55 unless the encrypting arrangement could also be 
inspected. 

The data output terminal 12 is coupled to re- 
ceive the data signals from the data memory 20 for 
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providing said data signals to a data processor (not 
shown) of the smart card 9. 

A non-volatile random-access-memory 
(NVRAM) 22 embodied in a floating gate transistor 
arrangement is coupled to the address encryptor 
14 via a latch 24, for providing the encrypting key 
thereto in the form of a data value. 

In operation, and with reference to a first item 
of data stored in a first memory address of the data 
memory 20, the smart card 9, during normal opera* 
tion, may have cause to retrieve the value of the 
first item of data, which is known to reside in the 
first memory address. 

Accordingly, a first address signal is sent to the 
address input terminal 10 from the address drive 
circuit (not shown). The first address signal ap- 
pears to be indicative of a second memory ad- 
dress, which does not contain the required value. 
The address encryptor 14 encodes the first ad- 
dress signal according to the encrypting key re- 
ceived from the latch 24. 

The decoders 16 and 18 receive the encrypted 
first address signal, which is now clearly indicative 
of the first memory address. 

The first memory address of the ROM 20 is 
thus addressed by the decoders 16 and 18 in 
response to the encrypted address signal, and pro- 
vides a data signal to the data output terminal 12, 
the signal being indicative of the first data value 
stored in the first memory address. 

The NVRAM 22 is primarily used for other 
purposes within the smart card 9, so the latch 24 is 
employed to receive the data value forming the 
encrypting key at the commencement of norma) 
operation of the smart card 9, for holding the key 
and supplying it to the address encryptor 14 during 
operation so that the NVRAM 22 is isolated from 
the encryptor 14 and hence the overall perfor- 
mance of the smart card 9 is not hindered by the 
operation of the address encryptor 14. 

It will be appreciated that an attempt to opti- 
cally detect the contents of the NVRAM 22 using 
the methods described above for the ROM 20, will 
not render the encrypting key detectable because 
floating gate arrangements cannot be inspected 
using these methods. 

The latch 24 can be optically inspected as 
described above, but it only holds the value of the 
encrypting key during normal operation and thus if 
inspected, the latch 24 will not contain the value of 
the encrypting key. The key is therefore secure. 

The address encryptor 14 uses the encrypting 
key to alter the received first address signal. By 
way of an example, the encrypting key may be a 
four digit binary number, and the address encryp- 
tor may perform an addition of the key and the first 
address signal. In this way the encryptor 14 pro- 
vides the row decoder 16 and the column decoder 



18 with the encrypted first address signal. 

The encrypting of the first address signal 
means that the physical location of the first mem- 
ory address within the ROM 20 does not cor- 

5 respond in any obvious way to the expected phys- 
ical location thereof, so without knowledge of the 
encrypting key, calculating the location of, and 
therefore optically determining the contents of the 
first memory address is not possible. The same is 

io true for all other memory addresses within the 
ROM 20. 

Furthermore, optical determination of the ar- 
rangement of the decoders 16 and 18 and the 
address encryptor 14 does not afford knowledge of 

75 the locations because the encrypting key is secure. 
In this way the data contained in the ROM 20 
is protected from unauthorised and fraudulent op- 
tical determination. 

It will be appreciated by one skilled in the art 

20 that alternative embodiments to the one herein- 
before described may be achieved, such as the 
use of the above arrangement in a device other 
than a smart card, such as a memory cartridge or 
other data memory device. 

25 It will also be appreciated that the NVRAM 22 

may be embodied by alternative technology to the 
floating gate transistors described above, such as 
metal/nitride oxide silicon (MNOS) semiconductor 
technology. 

30 Additionally, an alternative to the ROM 20 may 
be used, such as another data storage medium, for 
example an e raseable-prog ram m able-ROM (EPR- 
OM). 

35 Claims 

1. A data storage device comprising; 

an array of electronic memory locations for 
storing data; 

40 an address input terminal for coupling to 

an address source and coupled to provide first 
address signals from the address source to 
address the memory locations of the memory 
array; 

45 a data output terminal for coupling to a 

data reception means and connected to the 
memory array for receiving data signals there- 
from in response to the address signals, the 
data signals being indicative of the data stored 

50 in the memory locations addressed by the 

address signals; 

address encryption means coupled be- 
tween the address input terminal and the array 
for encrypting the first address signals; 

55 wherein the address encryption means con- 

tains encrypting data which is protected from 
direct optical determination, the encrypting 
data being used to encrypt the first address 



5 



EP 0 617 383 A2 



signals. 

2. The device of claim 1 wherein the array of 
data memory is a Read-Only-Memory contain- 
ing data which is stored in an encrypted man- 5 
ner, the encryption thereof being matched with 

the arrangement of the encrypting data. 

3. The device of claim 1 or claim 2 wherein the 
encrypting data is stored in a non-volatile- io 
memory. 

4. The device of claim 3 wherein the non-volatile- 
memory is a floating gate arrangement. 

15 

5. The device of claim 3 or claim 4 wherein the 
address encryption means includes a latch for 
receiving the encrypting data from the non- 
volatile-memory, such that the non-volatile- 
memory can operate independently from the so 
address encryption means during normal op- 
eration. 

6. The device of any preceding claim wherein the 
device is fabricated on a semiconductor in- 25 
tegrated circuit. 

7. A smart card comprising a data storage device 
constructed in accordance with any preceding 
claim. 30 



35 



40 



45 



50 



55 



4 



EP 0 617 383 A2 



FIG. 1 




5 



